RTS RTS on classification of major incidents and significant cyber threats

This is the regulatory technical standard (RTS) on ICT incident classification as adopted by the European Commission using the preliminary version published on EUR-Lex on 13 March 2024 as source.

This text is provided as-is and should not be relied upon as an authoritative source. Instead consult the Official Journal final version which is published on EUR-Lex as of 25 June 2024.

We are not aware of any material differences between the preliminary and authoritative versions but will make sure to update these pages to reflect the authoritative as soon as possible.

The full name of the RTS is Commission Delegated Regulation (EU) 2024/1772 of 13 March 2024 supplementing Regulation (EU) 2022/2554 of the European Parliament and of the Council with regard to regulatory technical standards specifying the criteria for the classification of ICT-related incidents and cyber threats, setting out materiality thresholds and specifying the details of reports of major incidents.

Our commitment is to continuously enhance this platform, improving readability and navigation for your convenience. Stay updated on our progress by following us on LinkedIn, where we announce new features. If you have any questions or suggestions, please feel free to reach out to us at dora@springflod.se.

Enjoy.